onsite
Security Operations Engineer - 1 & 1 Mail & Media Applications SE
Systems Engineer
Security Operations Engineer responsible for monitoring, detecting, and responding to cyber threats across cloud and on‑prem environments using SIEM, Python scripting, and AWS security services.
About the role
Key Responsibilities
- Operate and maintain SIEM platforms to detect, analyze, and triage security events in real time.
- Investigate incidents, conduct root‑cause analysis, and coordinate remediation with cross‑functional teams.
- Develop and automate security monitoring scripts in Python and AWS Lambda to enhance detection coverage.
- Perform threat hunting and vulnerability assessments to proactively identify potential risks.
- Document findings, produce incident reports, and contribute to continuous improvement of security processes.
Requirements
- 3+ years of experience in a SOC or security operations role.
- Strong knowledge of SIEM tools (e.g., Splunk, QRadar) and incident response frameworks.
- Proficiency in Python scripting and familiarity with AWS security services.
- Excellent analytical, communication, and problem‑solving skills.